image

Nous recherchons pour l’un de nos clients  The CISO Support will contribute to the definition & implementation of cybersecurity organization. The person will assist in performing cyber risk assessment, in dealing with operational security issues and cybersecurity projects.Areas of responsibility :•Organize o Define and update the in-house CyberSecurity Framework o Support the CyberSecurity Program Director to define and manage the multi-year Security Program o Define action plans specific to emerging threats like Ransomware o Define security roadmap for each quarterly o Estimate the yearly budget and manage day-to-day purchase orders o Realize monthly Operational Security Dashboard based on security indicators about patching, vulnerability management, IT/OT network segmentation rules compliance ratio • Protect o Ensure Application Security Assessment :▪ Support business lines to integrate cyber risk management into their projects ▪ Perform security risk analysis with application owners ▪ Define and monitor security requirements with application managers ▪ Check security requirements with providers o Ensure Security Analysis on Core and Cloud infrastructure : ▪ Perform security risk assessment and provide appropriate security recommendations ▪ Provide expertise on Azure Cloud services o Ensure security maintenance (MCS) following patch management and server obsolescence : ▪ Support IT team in defining the target and the action plan o Provide cross-technology technical input on IT and OT environments and share market and technology watch• Control o Perform annual and specific security tests (conduct RFP and follow-up on tests) o Define an audit plan and perform Third-Party security audit o Manage Internal Control Plan• Respond o Ensure Custumer’ resilience to handle cybersecurity incidents and crisis : ▪ Elaborate, update and test processes ▪ Contribute to the organization of the cyber crisis simulations▪ If necessary – support real cyber crisis management (facilitate checkpoints and log tracking, coordinate post-mortem, define post-mortem remediation action plan, etc.)Required skills and qualifications : • At least 5 years of experience in cybersecurity• Broad and deep technical skills across relevant IT technologies• Knowledge of Azure Cloud technologies• Ability to communicate with every level of business and IT stakeholders• Ability to conduct and manage security risk analysis• Certifications on Risk Management (ISO 27005, ISO 31000, CRISC), on CyberSecurity (ISO 2700x, 27032, CISSP, CISM, or equivalent) and on Azure Cloud (AZ-500) would be a plus

Afficher tous les horaires
  • Lundi09:00 - 17:00
  • Mardi09:00 - 17:00
  • Mercredi09:00 - 17:00
  • Jeudi09:00 - 17:00
  • Vendredi09:00 - 17:00

janvier, 2022

24

lundi

    August 26,2019

    • Tuesday
    • 9:00am - 10:00am
    • AnnonceFreelanceFrance
    Appointment confirmation email will be sent upon approval.

    Awesome Job!

    We have received your appointment and will send you a confirmation to your provided email upon approval.